Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 26, 2025, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194501	4.3	警告	ITechScripts	-	Proman Xpress の client_details.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4266	2012-08-15 20:19	2012-08-13	Show	GitHub Exploit DB Packet Storm

194502	7.5	危険	ITechScripts	-	Proman Xpress の category_edit.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4265	2012-08-15 20:18	2012-08-13	Show	GitHub Exploit DB Packet Storm

194503	4.3	警告	Bit51	-	WordPress 用 Better WP Security プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4264	2012-08-15 20:16	2012-05-11	Show	GitHub Exploit DB Packet Storm

194504	4.3	警告	Bit51	-	WordPress 用 Better WP Security プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4263	2012-08-15 20:15	2012-05-11	Show	GitHub Exploit DB Packet Storm

194505	4.3	警告	healthcare Consulting	-	myCare2x におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4262	2012-08-15 20:13	2012-08-13	Show	GitHub Exploit DB Packet Storm

194506	7.5	危険	healthcare Consulting	-	myCare2x の modules/patient/mycare2x_pat_info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4261	2012-08-15 20:12	2012-08-13	Show	GitHub Exploit DB Packet Storm

194507	7.5	危険	healthcare Consulting	-	myCare2x における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4260	2012-08-15 20:07	2012-08-13	Show	GitHub Exploit DB Packet Storm

194508	4.3	警告	C4B Com For Business	-	C4B XPhone Unified Communications 2011 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4259	2012-08-15 20:06	2012-08-13	Show	GitHub Exploit DB Packet Storm

194509	7.5	危険	Myrephp Programming	-	MYRE Real Estate Software における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4258	2012-08-15 20:06	2012-08-13	Show	GitHub Exploit DB Packet Storm

194510	5	警告	George Karpouzas	-	Yaqas における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-4257	2012-08-15 20:03	2012-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 26, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
321	-		-	-	Clear text secrets returned & Remote system secrets in clear text New	-	CVE-2024-55928	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

322	-		-	-	Flawed token generation implementation & Hard-coded key implementation New	-	CVE-2024-55927	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

323	-		-	-	Arbitrary file upload, deletion and read through header manipulation New	-	CVE-2024-55926	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

324	6.0	MEDIUM Local	-	-	IBM Security Verify Bridge 1.0.0 through 1.0.15 could allow a local privileged user to overwrite files due to excessive privileges granted to the agent. which could also cause a denial of service. New	CWE-471 Modification of Assumed-Immutable Data (MAID)	CVE-2024-45672	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

325	-		-	-	A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations configured with a logical switch with DNS records … New	-	CVE-2025-0650	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

326	-		-	-	A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet. Update	-	CVE-2024-24430	2025-01-24 03:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

327	-		-	-	When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffe… Update	-	CVE-2025-0395	2025-01-24 03:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

328	-		-	-	A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to c… Update	-	CVE-2023-37026	2025-01-24 03:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

329	-		-	-	A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to c… Update	-	CVE-2023-37025	2025-01-24 03:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

330	-		-	-	API Security bypass through header manipulation New	-	CVE-2024-55925	2025-01-24 02:15	2025-01-24	Show	GitHub Exploit DB Packet Storm